cut > I'd like to achieve something like this: > 1) on eth1 I have my private network connected, address space > is 192.168.1.0/24; it should run SNAT via one of above public > addresses - I have elected: 80.10.50.1; > 2) on eth2 I have my private network connected, address space > is 192.168.2.0/24; I'd like to have some of this hosts to be > visible as NAT 1-to-1; it also applies to $FW and other local > interfaces! so I have made NAT 1-to-1 entries: > 192.168.2.101 is visible as 80.10.50.2 > 192.168.2.102 is visible as 80.10.50.3 > 3) on eth3 I have servers with pure public addresses, hosts: > 80.10.50.4, 80.10.50.5; and router's address on interface > eth3 is: 80.10.50.6 - so .4 and .5 have default gateway set > to .6; > snip
Do you understand proxy arp? http://www.shorewall.net/ProxyARP.htm -Alex ------------------------------------------------------------------------- Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT & business topics through brief surveys - and earn cash http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
